Filtered by vendor Qualcomm
Subscriptions
Filtered by product Qfw7124
Subscriptions
Total
109 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-28553 | 1 Qualcomm | 288 Ar8035, Ar8035 Firmware, Ar9380 and 285 more | 2024-09-04 | 6.1 Medium |
Information Disclosure in WLAN Host when processing WMI event command. | ||||
CVE-2024-33048 | 1 Qualcomm | 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more | 2024-09-04 | 7.5 High |
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. | ||||
CVE-2024-33051 | 1 Qualcomm | 637 315 5g Iot, 315 5g Iot Firmware, 315 5g Iot Modem Firmware and 634 more | 2024-09-04 | 7.5 High |
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. | ||||
CVE-2024-33050 | 1 Qualcomm | 541 Ar8035, Ar8035 Firmware, Ar9380 and 538 more | 2024-09-04 | 7.5 High |
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. | ||||
CVE-2024-33057 | 1 Qualcomm | 356 Ar8035, Ar8035 Firmware, Csr8811 and 353 more | 2024-09-04 | 7.5 High |
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location. | ||||
CVE-2023-33077 | 1 Qualcomm | 192 Aqt1000, Aqt1000 Firmware, Ar8035 and 189 more | 2024-08-22 | 6.7 Medium |
Memory corruption in HLOS while converting from authorization token to HIDL vector. | ||||
CVE-2023-43534 | 1 Qualcomm | 132 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 129 more | 2024-08-22 | 8.6 High |
Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point. | ||||
CVE-2023-43522 | 1 Qualcomm | 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more | 2024-08-21 | 7.5 High |
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. | ||||
CVE-2024-21456 | 1 Qualcomm | 84 Ar8035, Ar8035 Firmware, Fastconnect 7800 and 81 more | 2024-08-21 | 6.5 Medium |
Information Disclosure while parsing beacon frame in STA. | ||||
CVE-2023-33065 | 1 Qualcomm | 208 Aqt1000, Aqt1000 Firmware, Ar8035 and 205 more | 2024-08-06 | 6.1 Medium |
Information disclosure in Audio while accessing AVCS services from ADSP payload. | ||||
CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2024-08-02 | 7.5 High |
Transient DOS while parse fils IE with length equal to 1. | ||||
CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2024-08-02 | 7.8 High |
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | ||||
CVE-2023-43523 | 1 Qualcomm | 284 Ar8035, Ar8035 Firmware, Csr8811 and 281 more | 2024-08-02 | 7.5 High |
Transient DOS while processing 11AZ RTT management action frame received through OTA. | ||||
CVE-2023-43520 | 1 Qualcomm | 140 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 137 more | 2024-08-02 | 8.6 High |
Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE. | ||||
CVE-2023-43533 | 1 Qualcomm | 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 473 more | 2024-08-02 | 7.5 High |
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame. | ||||
CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2024-08-02 | 7.5 High |
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | ||||
CVE-2023-33116 | 1 Qualcomm | 204 Ar8035, Ar8035 Firmware, Ar9380 and 201 more | 2024-08-02 | 7.5 High |
Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver. | ||||
CVE-2023-33120 | 1 Qualcomm | 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more | 2024-08-02 | 7.8 High |
Memory corruption in Audio when memory map command is executed consecutively in ADSP. | ||||
CVE-2023-33117 | 1 Qualcomm | 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more | 2024-08-02 | 7.8 High |
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. | ||||
CVE-2023-33118 | 1 Qualcomm | 271 Ar8035, Ar8035 Firmware, Csra6620 and 268 more | 2024-08-02 | 7.8 High |
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. |